$ rpki-client -vvf repo-rpki.idnic.net/repo/3e4c570a-4474-4cbf-b8f9-ff9791781549/0/3136302e32352e3234382e302f32342d3234203d3e20313533303931.roa File: 3136302e32352e3234382e302f32342d3234203d3e20313533303931.roa (raw, json) Hash identifier: /5pfQpsJ+akikRHbSANBrc6Im38/qROs6gz9IzUN1+8= Subject key identifier: 0D:62:E6:97:A2:AE:BC:6A:C9:B6:71:6B:5F:D8:3E:CE:6C:FB:7F:DE Certificate issuer: /CN=F69535097C181B143312D8EA1A6A52D500443902 Certificate serial: 3F8383B3E2781EA90DAEEFEE5AD3F57021097D5D Authority key identifier: F6:95:35:09:7C:18:1B:14:33:12:D8:EA:1A:6A:52:D5:00:44:39:02 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F69535097C181B143312D8EA1A6A52D500443902.cer Subject info access: rsync://repo-rpki.idnic.net/repo/3e4c570a-4474-4cbf-b8f9-ff9791781549/0/3136302e32352e3234382e302f32342d3234203d3e20313533303931.roa Signing time: Tue 13 Aug 2024 03:23:13 +0000 ROA not before: Tue 13 Aug 2024 03:18:13 +0000 ROA not after: Tue 12 Aug 2025 03:23:13 +0000 asID: 153091 IP address blocks: 160.25.248.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/3e4c570a-4474-4cbf-b8f9-ff9791781549/0/F69535097C181B143312D8EA1A6A52D500443902.crl rsync://repo-rpki.idnic.net/repo/3e4c570a-4474-4cbf-b8f9-ff9791781549/0/F69535097C181B143312D8EA1A6A52D500443902.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F69535097C181B143312D8EA1A6A52D500443902.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 23:47:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:83:83:b3:e2:78:1e:a9:0d:ae:ef:ee:5a:d3:f5:70:21:09:7d:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F69535097C181B143312D8EA1A6A52D500443902 Validity Not Before: Aug 13 03:18:13 2024 GMT Not After : Aug 12 03:23:13 2025 GMT Subject: CN=0D62E697A2AEBC6AC9B6716B5FD83ECE6CFB7FDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:97:03:21:b8:3c:b7:12:7e:99:07:ef:b1:d1: 09:e7:4c:85:f5:11:02:46:91:41:12:74:f2:33:0e: be:7b:7a:51:65:44:0c:d4:62:a7:39:19:9a:03:54: 1b:aa:d9:b5:c1:e9:9c:26:8b:d4:f3:24:7a:fe:ea: 5f:a1:00:93:85:40:28:2e:01:ff:c6:5c:5c:d8:cd: cf:72:17:49:92:07:37:f0:1f:85:41:cc:0f:b5:7c: 7c:1d:b2:95:d4:39:1a:9b:01:90:b3:d7:e2:ed:a5: 36:d6:b2:5a:c1:d6:2a:e5:81:de:49:a5:63:ee:ff: b3:68:72:40:e7:0e:36:1f:fe:6b:cd:20:61:8f:73: 7d:20:08:8f:5f:c6:07:fb:c1:b4:7d:99:72:95:56: 23:86:e7:31:a4:6d:45:a9:6d:33:de:b3:5a:06:bd: 33:33:8f:d9:c1:8f:42:a9:d6:fe:f9:22:cd:7e:7c: cf:3a:c2:51:5c:e0:1d:a5:43:87:66:9a:89:8d:f1: ac:d4:a1:62:14:51:d2:21:3c:e3:53:a0:39:b8:20: 8f:a7:ac:33:7d:90:bd:83:12:75:28:28:63:84:53: 82:20:be:46:91:dc:bc:78:42:3e:42:94:93:59:d8: f4:dc:8d:e2:8f:0f:20:34:b9:ba:2e:6d:e5:e1:a5: c4:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:62:E6:97:A2:AE:BC:6A:C9:B6:71:6B:5F:D8:3E:CE:6C:FB:7F:DE X509v3 Authority Key Identifier: keyid:F6:95:35:09:7C:18:1B:14:33:12:D8:EA:1A:6A:52:D5:00:44:39:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/3e4c570a-4474-4cbf-b8f9-ff9791781549/0/F69535097C181B143312D8EA1A6A52D500443902.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/F69535097C181B143312D8EA1A6A52D500443902.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/3e4c570a-4474-4cbf-b8f9-ff9791781549/0/3136302e32352e3234382e302f32342d3234203d3e20313533303931.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.25.248.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:aa:61:0f:58:5d:36:d6:2b:b3:28:be:ab:94:fb:6a:f8:a1: 89:46:2b:cc:30:69:4a:61:1b:43:19:9f:3c:93:5c:ff:1f:ae: b5:5a:b2:35:3c:11:fb:e1:ae:94:e8:7d:0b:42:a1:4a:82:41: 64:1e:bf:af:d8:02:d1:e5:9e:5a:6c:f3:25:f9:4d:56:7c:2d: 2b:14:a5:1f:80:6f:ef:fe:37:b0:d8:93:97:4b:36:1d:53:20: f1:55:90:fb:eb:e0:63:09:5c:0c:78:f7:57:3c:32:89:12:c0: 43:ad:3a:d5:ab:89:28:26:96:08:e8:c1:59:2e:8f:e3:3b:22: 84:14:58:6c:04:9a:6b:6c:f4:2b:34:2c:36:7c:e6:9c:9c:08: 71:de:92:40:68:ef:73:09:8b:10:98:80:fb:90:6e:bb:e5:ae: ca:6a:05:6d:56:3b:53:ff:d7:21:1b:09:1b:90:ee:74:d6:2d: e5:2c:a0:2a:8d:27:f1:a7:88:43:f9:5c:f5:b4:c8:27:0b:47: 2c:5d:33:59:6b:c3:ca:00:3c:1e:47:66:93:ca:85:12:5e:ee: 80:de:3f:7f:07:f5:9c:18:7b:8f:54:bb:57:41:d7:61:13:2d: e0:ee:2b:38:f2:91:09:b8:c8:83:bd:2e:44:9e:c0:8c:10:72: b3:71:4c:8b -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUP4ODs+J4HqkNru/uWtP1cCEJfV0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjY5NTM1MDk3QzE4MUIxNDMzMTJEOEVBMUE2QTUyRDUw MDQ0MzkwMjAeFw0yNDA4MTMwMzE4MTNaFw0yNTA4MTIwMzIzMTNaMDMxMTAvBgNV BAMTKDBENjJFNjk3QTJBRUJDNkFDOUI2NzE2QjVGRDgzRUNFNkNGQjdGREUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1lwMhuDy3En6ZB++x0QnnTIX1 EQJGkUESdPIzDr57elFlRAzUYqc5GZoDVBuq2bXB6Zwmi9TzJHr+6l+hAJOFQCgu Af/GXFzYzc9yF0mSBzfwH4VBzA+1fHwdspXUORqbAZCz1+LtpTbWslrB1irlgd5J pWPu/7NockDnDjYf/mvNIGGPc30gCI9fxgf7wbR9mXKVViOG5zGkbUWpbTPes1oG vTMzj9nBj0Kp1v75Is1+fM86wlFc4B2lQ4dmmomN8azUoWIUUdIhPONToDm4II+n rDN9kL2DEnUoKGOEU4IgvkaR3Lx4Qj5ClJNZ2PTcjeKPDyA0uboubeXhpcT1AgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUDWLml6KuvGrJtnFrX9g+zmz7f94wHwYDVR0j BBgwFoAU9pU1CXwYGxQzEtjqGmpS1QBEOQIwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby8z ZTRjNTcwYS00NDc0LTRjYmYtYjhmOS1mZjk3OTE3ODE1NDkvMC9GNjk1MzUwOTdD MTgxQjE0MzMxMkQ4RUExQTZBNTJENTAwNDQzOTAyLmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzEvRjY5NTM1MDk3QzE4MUIxNDMzMTJEOEVBMUE2QTUyRDUwMDQ0 MzkwMi5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvLzNlNGM1NzBhLTQ0NzQtNGNiZi1i OGY5LWZmOTc5MTc4MTU0OS8wLzMxMzYzMDJlMzIzNTJlMzIzNDM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzNTMzMzAzOTMxLnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAoBn4MA0GCSqG SIb3DQEBCwUAA4IBAQBeqmEPWF021iuzKL6rlPtq+KGJRivMMGlKYRtDGZ88k1z/ H661WrI1PBH74a6U6H0LQqFKgkFkHr+v2ALR5Z5abPMl+U1WfC0rFKUfgG/v/jew 2JOXSzYdUyDxVZD76+BjCVwMePdXPDKJEsBDrTrVq4koJpYI6MFZLo/jOyKEFFhs BJprbPQrNCw2fOacnAhx3pJAaO9zCYsQmID7kG675a7KagVtVjtT/9chGwkbkO50 1i3lLKAqjSfxp4hD+Vz1tMgnC0csXTNZa8PKADweR2aTyoUSXu6A3j9/B/WcGHuP VLtXQddhEy3g7is48pEJuMiDvS5EnsCMEHKzcUyL -----END CERTIFICATE-----Generated at Sun Nov 24 21:43:11 2024 by rpki-client on console-ams.rpki-client.org